Vulnerabilities

CVE-2024-0232

by Fred · 16/01/2024

A heap use-after-free issue has been identified in SQLite in the jsonParseAddNodeArray() function in sqlite3.c. This flaw allows a local attacker to leverage a victim to pass specially crafted malicious input to the application, potentially causing a crash and leading to a denial of service.

More information : https://access.redhat.com/security/cve/CVE-2024-0232

Attack vector : LOCAL
Attack complexity : LOW
Privileges required : NONE
User interaction : REQUIRED
Confidentiality impact : NONE
Integrity impact : NONE
Base score : 5.5
Base severity : MEDIUM
Exploitability score : 1.8
Impact score : 3.6

Similar

Tags: Cybersecurity Alert